|
|
Product Overview
Cisco® AnyConnect Secure Mobility Client for Apple iOS 4 is now available on the Apple App Store, enabling enterprises to securely mobilize employees that use iPhones for business, thereby enhancing productivity.
Cisco AnyConnect provides reliable and easy-to-deploy encrypted network connectivity from any Apple iOS 4 device by delivering persistent corporate access for users on the go. Whether accessing business email, a virtual desktop session, or most other iOS 4 applications, AnyConnect enables business-critical application connectivity. Through the use of Datagram Transport Layer Security (DTLS), TCP-based applications and latency-sensitive traffic (such as voice over IP [VoIP]) are provided an optimized communication path to corporate resources.
Figure 1 shows a sample AnyConnect VPN configuration
Figure 1. [[AnyConnect Icon and Sample VPN configuration]]
Features and Benefits
Table 1 lists the features and benefits of the Cisco AnyConnect Secure Mobility Client for Apple iOS 4.
Table 1. Features and Benefits
|
Feature |
Benefit |
|
Compatibility |
• Designed specifically for Apple iOS 4 (4.1+)
• Apple iPhone 3G, 3GS, and 4
• Apple iPod touch (second, third, and fourth generations)
• Apple iPad support available in the future (after Apple iOS 4.2 - November 2010 release)
|
|
Software Access |
• Available on the Apple App Store from any Apple iOS 4 (4.1+) compatible device
|
|
Optimized Network Access |
• Automatically adapts its tunneling to the most efficient method possible based on network constraints
• Uses DTLS to provide an optimized connection for TCP-based application access and latency-sensitive traffic, such as VoIP traffic
• Uses TLS (HTTP over TLS/SSL) to ensure availability of network connectivity through locked-down environments
• Compatible with Cisco ASA VPN load balancing
|
|
Mobility-Friendly |
• Network roaming capability allows connectivity to resume seamlessly after IP address change, loss of connectivity, or device standby
|
|
Battery-Friendly |
• Compatible with Apple iOS 4 device sleep operation
|
|
Encryption |
• Supports strong encryption, including AES-256 and 3DES-168 (headend device must have a strong-crypto license enabled)
|
|
Wide Range of Authentication Options |
• RADIUS
• RADIUS with Password Expiry (MSCHAPv2) to NT LAN Manager (NTLM)
• RADIUS one-time password (OTP) support (state/reply message attributes)
• RSA SecurID
• Active Directory/Kerberos
• Digital Certificate (compatible with Apple iOS and AnyConnect integrated SCEP for secure credential deployment)
• Lightweight Directory Access Protocol (LDAP) with Password Expiry and Aging
• Generic LDAP support
• Combined certificate and username/password multifactor authentication (double authentication)
|
|
Consistent User Experience |
• Full-tunnel client mode supports remote-access users requiring a consistent LAN-like user experience
• Compatible with Apple iOS Connect On Demand VPN capability for automatic VPN connections when required by an application
|
|
Centralized Policy Control |
• Policies can be preconfigured or configured locally, and can be automatically updated from the VPN headend
|
|
Advanced IP Network Connectivity |
• Access to internal IPv4 and IPv6 network resources
• Administrator-controlled split/ALL tunneling network access policy
• Access control policy
IP address assignment mechanisms: • Static
• Internal pool
• Dynamic Host Configuration Protocol (DHCP)
• RADIUS/LDAP
|
|
Statistics |
• On-device statistics and logging information
• Email logs are sent to administrator for analysis
|
This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit. (http://www.openssl.org).
This product includes cryptographic software written by Eric Young (eay@cryptsoft.com).
Platform Compatibility
Cisco AnyConnect Secure Mobility Client for Apple iOS 4 is compatible with all Cisco ASA 5500 Series Adaptive Security Appliance models (running Cisco ASA Software Release 8.0.3 and later).
Additional compatibility information may be found at:
http://www.cisco.com/en/US/docs/security/asa/compatibility/asa-vpn-compatibility.html.
http://www.cisco.com/en/US/docs/security/asa/compatibility/asa-vpn-compatibility.html.
Cisco AnyConnect Secure Mobility Client for Apple iOS 4 Licensing Options
Table 2 lists licensing options for the Cisco AnyConnect Secure Mobility Client for Apple iOS 4.
Table 2. Cisco AnyConnect Secure Mobility Client for Apple iOS 4 Licensing Options
|
License Option |
Description |
|
Required Platform License options |
|
|
AnyConnect Essentials |
• Highly secure remote-access connectivity
• Single license per device model
• Full-tunneling access to enterprise applications
|
|
AnyConnect Premium |
• Also provides support for clientless SSL VPN and capabilities available on other AnyConnect platforms, including Cisco Secure Desktop Host Scan and AnyConnect Secure Mobility (always-on VPN)
• License is based on number of simultaneous users, and is available as a single device or shared license
• AnyConnect Secure Mobility with a Cisco IronPort Web Security Appliance license does not require a Premium license for always-on capability
|
|
Required Mobile License |
|
|
AnyConnect Mobile |
• Enables Mobile OS platform compatibility, including Apple iOS 4 compatibility
• Required per headend device, in addition to Essentials or Premium licenses
|
Electronic License Delivery (eDelivery)
Most licenses are available for electronic delivery; this significantly speeds up license fulfillment time. To order a license electronically, be sure to order part number(s) that begin with "L-."
Warranty Information
Find warranty information at the Cisco Product Warranties page.
Ordering Information
To place an order for a headend license, visit the Cisco Ordering Home Page.
The Cisco AnyConnect Secure Mobility Client for Apple iOS 4 is available on the Apple App Store. Headend licenses are required to enable connectivity.
Please refer to the AnyConnect Licensing Options section above for additional information on the available options.
For a list of available licensing options that enable connectivity with AnyConnect, please refer to the AnyConnect Secure Mobility Client Features, Licenses, and OSs webpage.For
For More Information
Cisco AnyConnect Secure Mobility Client documentation: http://www.cisco.com/en/US/products/ps8411/tsd_products_support_series_home.html.
Cisco ASA 5500 Series Adaptive Security Appliances: http://www.cisco.com/go/asa.
Cisco ASA 5500 Series Adaptive Security Appliance Licensing Information: http://www.cisco.com/en/US/products/ps6120/products_licensing_information_listing.html.